The developers of password manager LastPass (used by more than 33 million people around the world) reported that unknown attackers hacked into the company’s cloud storage and gained access to customer data. Notably, for this hack, the hackers used data stolen from the company earlier in the previous attack, which took place in August 2022.
Let me remind you that last summer it became known about the hack to which LastPass was subjected. Back then, the company reported that unknown hackers gained access to the development environment by compromising the account of one of its employees. While LastPass said it found no evidence of compromised customer data and encrypted password vaults, it was confirmed that the attackers were able to steal parts of the source code and “proprietary technical information.” Worse, the investigation into the incident revealed that the hackers had gone undetected on the company’s network for four days.
Now LastPass has claimed a second compromise, this time also affecting customer data.
“We recently detected unusual activity on a third-party cloud storage service currently being used by both LastPass and an affiliate of GoTo,” the company said. – “We determined that an unauthorized party, using information from the August 2022 incident, was able to access some of our customer data.
It is reported that IS company Mandiant has already been involved in the investigation of the incident, as well as law enforcement authorities have been notified about the hack. It is separately emphasized that client passwords have not been compromised and “remain reliably encrypted thanks to the Zero Knowledge architecture”.
“We are working diligently to determine the scope of the incident and are investigating what specific information was accessed,” Lastpass adds.
Representatives of the aforementioned GoTo (formerly LogMeIn, a company LastPass has owned since 2015), which specializes in remote access and collaboration, also confirm the attack and write that the attackers gained access to the development environment and third-party cloud storage.